{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-25T22:54:12.344","vulnerabilities":[{"cve":{"id":"CVE-2020-4128","sourceIdentifier":"psirt@hcl.com","published":"2020-12-01T14:15:11.770","lastModified":"2026-06-17T03:19:33.993","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"HCL Domino is susceptible to a lockout policy bypass vulnerability in the ID Vault service. An unauthenticated attacker could use this vulnerability to mount a brute force attack against the ID Vault service."},{"lang":"es","value":"HCL Domino, es susceptible a una vulnerabilidad de omisión de políticas de bloqueo en el servicio ID Vault. Un atacante no autenticado podría usar esta vulnerabilidad para montar un ataque de fuerza bruta contra el servicio ID Vault"}],"affected":[{"source":"psirt@hcl.com","affectedData":[{"vendor":"n/a","product":"HCL Domino","versions":[{"version":"v9","status":"affected"},{"version":"v10","status":"affected"},{"version":"v11","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:domino:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndIncluding":"9.0.1","matchCriteriaId":"E912DDC2-BF25-4D5D-B1AF-86742A4137B1"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:domino:*:*:*:*:*:*:*:*","versionStartIncluding":"10.0.0","versionEndIncluding":"10.0.1","matchCriteriaId":"DDAF258F-BF11-4A8D-9211-BA6E79682BCA"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:domino:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.0.1","matchCriteriaId":"F3A5C76D-53EC-49BA-A956-F2CF54F83661"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:domino:10.0.1:-:*:*:*:*:*:*","matchCriteriaId":"EC5EB2B8-9B48-4E9B-9726-71E4A6CCFA99"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_1:*:*:*:*:*:*","matchCriteriaId":"10824FE5-1BCB-422A-8EFD-AE170C78FB43"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_2:*:*:*:*:*:*","matchCriteriaId":"985D72C3-3149-4DC1-85FA-C681CF779050"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_3:*:*:*:*:*:*","matchCriteriaId":"8688C462-C24D-4E68-B2A1-488E20396DE5"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_4:*:*:*:*:*:*","matchCriteriaId":"64D65B08-CAB2-4FC5-9261-4303EF796BCF"}]}]}],"references":[{"url":"https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085408","source":"psirt@hcl.com","tags":["Patch","Vendor Advisory"]},{"url":"https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085408","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}